← Back to Home

Privacy Policy

Last Updated: October 24, 2025

Your Privacy at a Glance

  • Your diary data stays on your device
  • We don't collect any personal information
  • No tracking, analytics, or advertising
  • Optional iCloud sync is encrypted by Apple
  • You control all your data

Introduction

DigiDiary ("we", "our", or "the app") is committed to protecting your privacy. This Privacy Policy explains how we handle your information when you use our iOS application.

Information We Collect

Information You Provide

  • Diary Entries: Text entries you create within the app
  • Audio Recordings: Voice recordings you make for transcription
  • Images: Photos you attach to diary entries (captured or selected from library)
  • Location Data: GPS coordinates automatically captured with entries (if enabled)
  • Personal Details: Optional first name, last name, and custom vocabulary terms
  • Device Information: Crypto-secure persistent UUID generated for each device for audit trail purposes

Information Collected Automatically

None. DigiDiary does not collect analytics, usage data, or device information.

How We Use Your Information

Your diary entries and all associated data are used solely for:

  • Displaying your diary content within the app
  • Transcribing audio to text (when using transcription features)
  • Storing and displaying attached images with your entries
  • Showing your entries on maps (when location data is available)
  • Generating PDF reports with text, images, timestamps, and location data
  • Syncing your data across your devices via iCloud (if enabled)
  • Maintaining audit trail records with device identification and edit history

Data Storage and Security

Local Storage

  • All diary data (text, images, audio, location) is stored locally on your device in an encrypted SQLite database
  • Data is protected by iOS security features and device passcode/biometrics
  • Images are stored in app's private storage and sync via iCloud if enabled
  • Audio recordings are temporarily stored for transcription and can be automatically deleted
  • Each device generates a crypto-secure persistent UUID for audit trail tracking (never shared externally)

iCloud Sync

  • If enabled, your diary data (entries, images, audio, location, audit trails) is synced via iCloud
  • iCloud data is encrypted and accessible only with your Apple ID
  • Auto-sync feature (if enabled) syncs automatically every 15 minutes and when app opens
  • Multiple diaries and archived diaries all sync via iCloud
  • Apple's privacy policy governs iCloud services: https://www.apple.com/legal/privacy/

Third-Party Services

When using OpenAI transcription:

  • Audio is sent to OpenAI for transcription only
  • Audio is not stored by OpenAI after transcription
  • OpenAI's privacy policy: https://openai.com/privacy/

Data Sharing

We do not share your personal information with third parties, except:

  • AI Transcription Service: Only when you choose to use AI transcription (audio only, never stored after transcription)
  • Apple iCloud: Only when you enable iCloud sync (all data types: text, images, audio, location)
  • Apple Maps / Google Maps: Only when you tap a location to view it on a map
  • PDF/Image Sharing: When you explicitly choose to export/share your diary as PDF or share images

Your Rights and Choices

You have complete control over your data:

  • Access: View all your diary data within the app
  • Delete: Remove individual entries or all data
  • Export: Save your diary as PDF
  • Disable Features: Turn off iCloud sync or switch transcription methods
  • Data Portability: Export your data in PDF format

Children's Privacy

DigiDiary does not knowingly collect information from children under 13. The app is intended for general use under parental guidance where appropriate.

Data Retention

  • Diary entries and all associated data (text, images, location) are retained until you delete them
  • Images are retained locally and in iCloud until you remove them from entries
  • Audio recordings can be set to auto-delete after transcription or after 30 days
  • Archived diaries are retained with full data until you delete or unarchive them
  • Deleted diaries can be recovered for a limited time before permanent deletion
  • Audit trail data (edit history) is retained as long as the entry exists
  • No data is retained on our servers (we don't have servers - zero-knowledge architecture)

Security Measures

We implement bank-level security measures:

  • Local data stored in encrypted SQLite database
  • API keys stored in iOS Keychain with AES-256 encryption
  • Crypto-secure UUID generation for device identification (prevents collisions, ensures audit integrity)
  • No servers, no tracking, no analytics (zero-knowledge architecture)
  • Images encrypted by iOS file system and iCloud encryption
  • No transmission of data except to explicitly chosen services (transcription, iCloud, maps)
  • All code runs locally on your device - we never see your data

Policy Updates

We may update this Privacy Policy. Changes will be reflected by the "Last Updated" date. Continued use of the app after changes constitutes acceptance.

Contact Information

For privacy concerns or questions about this policy:

Compliance

DigiDiary complies with:

  • Apple's App Store Guidelines
  • Australian Privacy Act 1988
  • Australian Privacy Principles (APPs)
  • General Data Protection Regulation (GDPR) - for EU users